User Guide

KASPERSKY ANTI-VIRUS

8181

Question: Firewall-1 generates a lot of records about the

authentication between KAWALL and Firewall-1 in its logs.

How can I suppress these records?

Answer: It happens because by default the firewall modules

expect the authentication data from the CVP server.

You can edit the firewall file

$FWDIR/conf/fwopsec.conf

Delete the following string from this file:

server <IP address> 18181 AUTH_OPSEC

Then restart the firewall.

Question: When I download a file, the operation proceeds

much slower and, when the file is downloaded up to about

50% the operation fails. Why does it happen?

Answer: First you must know one thing about the KAWall

performance concept.

1. When a user downloads a file, the data is transferred

by the firewall (Firewall Check Point) to the CVP

server (KAWALL), and then the CVP server transfers

it to the user. This double transfer operation results in

essential slow-down of the operation.

2. While transferring the data packets KAWALL

withholds some part of the data (usually the file end),

and passes the rest of file to the firewall. If the

program detects a virus in the withheld part, it

terminates the transfer operation.

Compromise between your computer safety and friendliness

of the program depends on the percentage of data held by

the CVP server.